1
Candidate: CVE-2018-8100
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8100
5
https://forum.xpdfreader.com/viewtopic.php?f=3&t=654&p=819#p819
6
https://forum.xpdfreader.com/viewtopic.php?f=3&t=652
8
The JPXStream::readTilePart function in JPXStream.cc in xpdf 4.00 allows
9
attackers to launch denial of service (heap-based buffer overflow and
10
application crash) or possibly have unspecified other impact via a specific
11
pdf file, as demonstrated by pdftohtml.
14
jdstrand> xpdf in koffice is 2.0
15
mdeslaur> code is different in poppler, doesn't look vulnerable
22
upstream_xpdf: needs-triage
24
trusty_xpdf: needs-triage
25
xenial_xpdf: needs-triage
26
artful_xpdf: needs-triage
27
bionic_xpdf: needs-triage
28
devel_xpdf: needs-triage
31
upstream_poppler: needs-triage
32
precise/esm_poppler: DNE
33
trusty_poppler: not-affected (0.24.5-2ubuntu4.9)
34
xenial_poppler: not-affected (0.41.0-0ubuntu1.6)
35
artful_poppler: not-affected (0.57.0-2ubuntu4.2)
36
bionic_poppler: not-affected (0.62.0-1ubuntu1)
37
devel_poppler: not-affected (0.62.0-1ubuntu1)
40
upstream_libextractor:
41
precise/esm_libextractor: DNE
42
trusty_libextractor: needs-triage
43
xenial_libextractor: needs-triage
44
artful_libextractor: needs-triage
45
bionic_libextractor: needs-triage
46
devel_libextractor: needs-triage
49
upstream_ipe: needs-triage
51
trusty_ipe: needs-triage
52
xenial_ipe: needs-triage
53
artful_ipe: needs-triage
54
bionic_ipe: needs-triage
55
devel_ipe: needs-triage